1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
|
Return-Path: <jameson.lopp@gmail.com>
Received: from smtp1.linuxfoundation.org (smtp1.linux-foundation.org
[172.17.192.35])
by mail.linuxfoundation.org (Postfix) with ESMTPS id 360C415
for <bitcoin-dev@lists.linuxfoundation.org>;
Sun, 23 Dec 2018 21:08:26 +0000 (UTC)
X-Greylist: whitelisted by SQLgrey-1.7.6
Received: from mail-ot1-f43.google.com (mail-ot1-f43.google.com
[209.85.210.43])
by smtp1.linuxfoundation.org (Postfix) with ESMTPS id AF2877C
for <bitcoin-dev@lists.linuxfoundation.org>;
Sun, 23 Dec 2018 21:08:25 +0000 (UTC)
Received: by mail-ot1-f43.google.com with SMTP id 40so9609500oth.4
for <bitcoin-dev@lists.linuxfoundation.org>;
Sun, 23 Dec 2018 13:08:25 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20161025;
h=mime-version:references:in-reply-to:from:date:message-id:subject:to;
bh=TIgXP6Bj8N1DaI4mQGt3+TSwbnE3VeqS2+/TZ1b7FVg=;
b=uvWwAOS/UVj5ksUVhD7W5CRDa3xkEXf0nAf5sT9RamXLlXW4UZytZesVa+GVJkcxdO
hnzJIGJ7OA+4mBzQTYN3ldj2lehgC66BGjkWYc8lV/odGqj5olzGOIi0AD2L0Wz7M1um
HgWhHL9OWwb2U9VlIeSD+whxVKP0BPcojgrK7HAIovx9+DwHEyerAydrfvkx74gyP7YF
UjMDM6EcMnsGiw40LltOH9tjHfymao8YXxGQls2QLlRk32euovPN4nilAWGZWCsOLBvU
4wtRy85JvPs4ykHLofM6k9iMyfy3/9JVmgEUAExU8CtKQu7fyDgjF6EHofOCOXgLKZJh
17Uw==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
d=1e100.net; s=20161025;
h=x-gm-message-state:mime-version:references:in-reply-to:from:date
:message-id:subject:to;
bh=TIgXP6Bj8N1DaI4mQGt3+TSwbnE3VeqS2+/TZ1b7FVg=;
b=NRDi1psuMIRFv+3AE3xzG20Mxx7cU4jmZ/gAd9lAQ0u+VvSf9BuuuChFKkcho0rtOE
i4Sn7w86NpDO4l0HpXVRm3KFBDVvvaarCQRBxS3Rh/syjV/sOVD2icJ1kJQG0p0tCNH2
kA259l02wg6vawY1Jib4gjludqtZjQbRQErH/7VhiZfDUbMV/i6dbcgb0W8mKMlOoLUN
t053scwrRmRiVCmwwYujjvt3efOkUYceENmFvVt4Mc10to97fW8UXZGUkVjU+MAVZImk
G+E5DGh7l8RHb1JBKn4vt3ryfU8YImEzgMvXMsm9hvgIqs8uyRlXvCx5U/nOGPGreyCf
lGbA==
X-Gm-Message-State: AJcUukcGmkPr/qWWzKnATKlDZL2UW+p93HaEJ9+iR/oLS6DuVTrvoyvL
3CeMBfo/NVVpDA2mgR01QuEMTvY1rWKh7ty8Efg=
X-Google-Smtp-Source: ALg8bN4QWKKKSFdHtzt39pFGoMrAy02te1sVa781jpCHqWbWSBHcDmlW/gKOOxPcWLWE7eQeW+c3UVAfigZGCyqS108=
X-Received: by 2002:a9d:37f5:: with SMTP id x108mr7029879otb.76.1545599304907;
Sun, 23 Dec 2018 13:08:24 -0800 (PST)
MIME-Version: 1.0
References: <68330522-7e7c-c3b4-99a9-1c68ddb56f23@gmail.com>
In-Reply-To: <68330522-7e7c-c3b4-99a9-1c68ddb56f23@gmail.com>
From: Jameson Lopp <jameson.lopp@gmail.com>
Date: Sun, 23 Dec 2018 16:08:13 -0500
Message-ID: <CADL_X_f08N9uHFN1FBWM4iC=oSWXdLD_WU3EtfhPse7xD5WHpA@mail.gmail.com>
To: Aymeric Vitte <vitteaymeric@gmail.com>,
Bitcoin Protocol Discussion <bitcoin-dev@lists.linuxfoundation.org>
Content-Type: multipart/alternative; boundary="00000000000088c209057db6e165"
X-Spam-Status: No, score=-2.0 required=5.0 tests=BAYES_00,DKIM_SIGNED,
DKIM_VALID, DKIM_VALID_AU, FREEMAIL_FROM, HTML_MESSAGE,
RCVD_IN_DNSWL_NONE autolearn=ham version=3.3.1
X-Spam-Checker-Version: SpamAssassin 3.3.1 (2010-03-16) on
smtp1.linux-foundation.org
X-Mailman-Approved-At: Sun, 23 Dec 2018 21:51:01 +0000
Subject: Re: [bitcoin-dev] BIP39 seeds
X-BeenThere: bitcoin-dev@lists.linuxfoundation.org
X-Mailman-Version: 2.1.12
Precedence: list
List-Id: Bitcoin Protocol Discussion <bitcoin-dev.lists.linuxfoundation.org>
List-Unsubscribe: <https://lists.linuxfoundation.org/mailman/options/bitcoin-dev>,
<mailto:bitcoin-dev-request@lists.linuxfoundation.org?subject=unsubscribe>
List-Archive: <http://lists.linuxfoundation.org/pipermail/bitcoin-dev/>
List-Post: <mailto:bitcoin-dev@lists.linuxfoundation.org>
List-Help: <mailto:bitcoin-dev-request@lists.linuxfoundation.org?subject=help>
List-Subscribe: <https://lists.linuxfoundation.org/mailman/listinfo/bitcoin-dev>,
<mailto:bitcoin-dev-request@lists.linuxfoundation.org?subject=subscribe>
X-List-Received-Date: Sun, 23 Dec 2018 21:08:26 -0000
--00000000000088c209057db6e165
Content-Type: text/plain; charset="UTF-8"
I believe it would depend upon the entropy used for the seed, as that would
affect how many bits the checksum represents.
https://github.com/bitcoin/bips/blob/master/bip-0039.mediawiki#Generating_the_mnemonic
So for a 24 word / 256 bit mnemonic the checksum is 8 bits, thus there are
8 valid checksums and if you picked a random checksum from the wordlist of
2048 words you'd have a 1 in 256 chance of picking a valid one.
On Sun, Dec 23, 2018 at 1:44 PM Aymeric Vitte via bitcoin-dev <
bitcoin-dev@lists.linuxfoundation.org> wrote:
> Has anybody already looked at this: given N randomly chosen words
> belonging to a BIP39 2048 words dictionary, what is the probability to
> get a "valid" BIP39 seed (ie with the right checksum)?
>
> The result looks (very) surprising to me and might have some use cases,
> just would like to know if this topic has already been discussed before
> going further
>
> --
> Move your coins by yourself (browser version): https://peersm.com/wallet
> Bitcoin transactions made simple:
> https://github.com/Ayms/bitcoin-transactions
> Zcash wallets made simple: https://github.com/Ayms/zcash-wallets
> Bitcoin wallets made simple: https://github.com/Ayms/bitcoin-wallets
> Get the torrent dynamic blocklist: http://peersm.com/getblocklist
> Check the 10 M passwords list: http://peersm.com/findmyass
> Anti-spies and private torrents, dynamic blocklist:
> http://torrent-live.org
> Peersm : http://www.peersm.com
> torrent-live: https://github.com/Ayms/torrent-live
> node-Tor : https://www.github.com/Ayms/node-Tor
> GitHub : https://www.github.com/Ayms
>
> _______________________________________________
> bitcoin-dev mailing list
> bitcoin-dev@lists.linuxfoundation.org
> https://lists.linuxfoundation.org/mailman/listinfo/bitcoin-dev
>
--00000000000088c209057db6e165
Content-Type: text/html; charset="UTF-8"
Content-Transfer-Encoding: quoted-printable
<div dir=3D"ltr"><div dir=3D"ltr">I believe it would depend upon the entrop=
y used for the seed, as that would affect how many bits the checksum repres=
ents.=C2=A0<a href=3D"https://github.com/bitcoin/bips/blob/master/bip-0039.=
mediawiki#Generating_the_mnemonic">https://github.com/bitcoin/bips/blob/mas=
ter/bip-0039.mediawiki#Generating_the_mnemonic</a></div><div dir=3D"ltr"><b=
r></div><div>So for a 24 word / 256 bit mnemonic the checksum is 8 bits, th=
us there are 8 valid checksums and if you picked a random checksum from the=
wordlist of 2048 words you'd have a 1 in 256 chance of picking a valid=
one.</div></div><br><div class=3D"gmail_quote"><div dir=3D"ltr">On Sun, De=
c 23, 2018 at 1:44 PM Aymeric Vitte via bitcoin-dev <<a href=3D"mailto:b=
itcoin-dev@lists.linuxfoundation.org">bitcoin-dev@lists.linuxfoundation.org=
</a>> wrote:<br></div><blockquote class=3D"gmail_quote" style=3D"margin:=
0px 0px 0px 0.8ex;border-left:1px solid rgb(204,204,204);padding-left:1ex">=
Has anybody already looked at this: given N randomly chosen words<br>
belonging to a BIP39 2048 words dictionary, what is the probability to<br>
get a "valid" BIP39 seed (ie with the right checksum)?<br>
<br>
The result looks (very) surprising to me and might have some use cases,<br>
just would like to know if this topic has already been discussed before<br>
going further<br>
<br>
-- <br>
Move your coins by yourself (browser version): <a href=3D"https://peersm.co=
m/wallet" rel=3D"noreferrer" target=3D"_blank">https://peersm.com/wallet</a=
><br>
Bitcoin transactions made simple: <a href=3D"https://github.com/Ayms/bitcoi=
n-transactions" rel=3D"noreferrer" target=3D"_blank">https://github.com/Aym=
s/bitcoin-transactions</a><br>
Zcash wallets made simple: <a href=3D"https://github.com/Ayms/zcash-wallets=
" rel=3D"noreferrer" target=3D"_blank">https://github.com/Ayms/zcash-wallet=
s</a><br>
Bitcoin wallets made simple: <a href=3D"https://github.com/Ayms/bitcoin-wal=
lets" rel=3D"noreferrer" target=3D"_blank">https://github.com/Ayms/bitcoin-=
wallets</a><br>
Get the torrent dynamic blocklist: <a href=3D"http://peersm.com/getblocklis=
t" rel=3D"noreferrer" target=3D"_blank">http://peersm.com/getblocklist</a><=
br>
Check the 10 M passwords list: <a href=3D"http://peersm.com/findmyass" rel=
=3D"noreferrer" target=3D"_blank">http://peersm.com/findmyass</a><br>
Anti-spies and private torrents, dynamic blocklist: <a href=3D"http://torre=
nt-live.org" rel=3D"noreferrer" target=3D"_blank">http://torrent-live.org</=
a><br>
Peersm : <a href=3D"http://www.peersm.com" rel=3D"noreferrer" target=3D"_bl=
ank">http://www.peersm.com</a><br>
torrent-live: <a href=3D"https://github.com/Ayms/torrent-live" rel=3D"noref=
errer" target=3D"_blank">https://github.com/Ayms/torrent-live</a><br>
node-Tor : <a href=3D"https://www.github.com/Ayms/node-Tor" rel=3D"noreferr=
er" target=3D"_blank">https://www.github.com/Ayms/node-Tor</a><br>
GitHub : <a href=3D"https://www.github.com/Ayms" rel=3D"noreferrer" target=
=3D"_blank">https://www.github.com/Ayms</a><br>
<br>
_______________________________________________<br>
bitcoin-dev mailing list<br>
<a href=3D"mailto:bitcoin-dev@lists.linuxfoundation.org" target=3D"_blank">=
bitcoin-dev@lists.linuxfoundation.org</a><br>
<a href=3D"https://lists.linuxfoundation.org/mailman/listinfo/bitcoin-dev" =
rel=3D"noreferrer" target=3D"_blank">https://lists.linuxfoundation.org/mail=
man/listinfo/bitcoin-dev</a><br>
</blockquote></div>
--00000000000088c209057db6e165--
|